System and method for preventing local area network (LAN) from being scanned

A local area network and statistical module technology, applied in the field of network security, can solve the problems of extracting high-risk scanning users, unable to protect the intranet, etc.

Active Publication Date: 2016-08-24
SHANGHAI CTRIP COMMERCE CO LTD
View PDF3 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] The technical problem to be solved by the present invention is to overcome the defect in the prior art that high-risk scanning users cannot be extracted from massive IDS logs and processed, and thus cannot protect the intranet, and provide a system and method for preventing local area networks from being scanned

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • System and method for preventing local area network (LAN) from being scanned
  • System and method for preventing local area network (LAN) from being scanned
  • System and method for preventing local area network (LAN) from being scanned

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0073] The present invention is further illustrated below by means of examples, but the present invention is not limited to the scope of the examples.

[0074] This embodiment provides a system to prevent the local area network from being scanned, such as figure 1 As shown, it includes collection module 11, filter module 13, statistics module 14, summary module 15, detection module 16 and blocking module 17, filter module 13 includes 2 filter nodes 31, statistics module 14 includes 3 levels of statistics nodes, wherein, the first There are 6 statistical nodes 41 at the first level, 4 statistical nodes 42 at the second level, and 2 statistical nodes 43 at the third level.

[0075] Such as figure 2 As shown, each first-level statistical node 41 includes a statistical unit 20, a second judging unit 25, an assignment unit 26, a sending unit 27, and a third judging unit 28, wherein the statistical unit 20 includes a preset unit 21, a first A judging unit 22 , a counting unit 23 ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a system and method for preventing a local area network (LAN) from being scanned. The system comprises an acquisition module, a filter module, a statistics module, a detection module and a lock out module. The acquisition module is used for real-time acquisition of IDS logs; the filter module is used for acquiring and filtering the IDS logs to obtain IDS logs of a scan type; the statistics module is used for conducting statistics on the number of scanning events based on IP addresses and timestamps, and sending statistical results to the detection module; the detection module is used for detecting whether the number of scanning events corresponding to the respective IP addresses is greater than a predetermined threshold; and the lock out module is used for locking out switch interfaces corresponding to the IP addresses. Compared with the prior art, the invention can detect whether the LAN is scanned in real time and timely lock out the corresponding switch interfaces in the presence of high-risk scanning events, thereby effectively preventing the LAN from being scanned; and can also adjust the detection intensity of whether the LAN is scanned, and has a wide range of applications.

Description

technical field [0001] The invention relates to the field of network security. In particular, it relates to a system and method for preventing a local area network from being scanned. Background technique [0002] With the development of the Internet, the security of the local area network, also known as the intranet, has been paid more and more attention by enterprises, and scanning is often the first step in the penetration of the intranet. The real high-risk scanning users are extracted from the logs and further processed, so that the protection of the intranet cannot be achieved. Contents of the invention [0003] The technical problem to be solved by the present invention is to overcome the defect in the prior art that high-risk scanning users cannot be extracted from massive IDS logs and processed, and thus cannot protect the intranet, and provide a system and method for preventing local area networks from being scanned . [0004] The present invention solves the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1425
Inventor 朱志博雷兵
Owner SHANGHAI CTRIP COMMERCE CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap